A currently circulating malicious spam campaign, entices users into thinking that they’ve received a legitimate ‘Friend Confirmation Request‘ on Facebook. In reality thought, the campaign attempts to exploit client-side vulnerabilities, CVE-2010-0188 in particular.

The following malicious MD5s are also known to have phoned back to the same IPs/were downloaded from the same IPs in the past:MD5: e08c8ed751a3fc36bc966e47b76e2863MD5: f507b822651d2fbc82a98e4cc7f735a2MD5: e08c8ed751a3fc36bc966e47b76e2863MD5: f88d6a7381c0bbac1b1558533cfdfd62MD5: 11be39e64c9926ea39e6b2650624dab4MD5: ea893fb04cc536ff692cc3177db7e66fMD5: c8f8b4c0fced61f8a4d3b2854279b4efMD5: 93bae01631d10530a7bac7367458abeaMD5: 199b8cf0ffd607787907b68c9ebecc8bMD5: 6b1bef6fb45f5c2d8b46a6eb6a2d5834MD5: 9eb6ed284284452f7a1e4e3877dded2dMD5: efacf1c2c6b33f658c3df6a3ed170e2dMD5: 7c70d5051826c9c93270b8c7fc9d276fMD5: dcb378d6033eed2e01ff9ab8936050a0MD5: 8556f98907fd74be9a9c1b3bf602f869